General
-
Target
B2B_RECHNUNG_00002647_B00129688_RB00129697.zip
-
Size
1KB
-
Sample
240719-h815nascqb
-
MD5
02aa43cc2bc73a844e811bd03f5081aa
-
SHA1
a64b8df9438af6869d5e7e78c3aecdfb2395fde1
-
SHA256
1cb4cef9ab6a2377dda67e0aae3cd73b87a0cc7486439a678293d97cea6071c3
-
SHA512
bcb2fcaec2749050406b5167332dee0a56277307b711ec9fc4771b33e7584766b5a46c2985d7c7c73f5ec7b8709a291d16c473bf5845ad6c801acf00df210758
Malware Config
Targets
-
-
Target
2396128426286668527.bat
-
Size
2KB
-
MD5
211ef58318128c130246aad909e2ad4b
-
SHA1
8ac25e2d4fee1eb711aa3c9d38989c4f96d8144b
-
SHA256
8de871fd622532f8825c8006c73ea949e0b5938d3cdd753551f4fcb303b45ba4
-
SHA512
163f0461e958954e30cae3fd8fa564490f5ab07b02e6a222896741314be8f43eb259d0691516ae1c57f638c81c4d2fb47cf1ccbabc6bc88efddaf2688e03d155
Score8/10-
Command and Scripting Interpreter: PowerShell
Run Powershell and hide display window.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-